$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: 75n7kbaHE6bxo+2zBgHwhype5azMVZ+p54nNFfGsfbQ= Subject key identifier: 66:38:C5:D5:27:09:26:6A:C9:3F:A8:90:6A:B6:3A:81:B3:FB:7E:00 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 057B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 0573 Signing time: Fri 22 Nov 2024 22:52:20 +0000 Manifest this update: Fri 22 Nov 2024 22:52:20 +0000 Manifest next update: Fri 29 Nov 2024 22:52:20 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: 3PAFDO9S4CtGYCRKqSLVwt0BDxUttWWANsHx+c5qiXw=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Nov 22 22:52:20 2024 GMT Not After : Nov 29 22:52:20 2024 GMT Subject: CN=67410b24-51c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1b:32:58:58:69:ff:83:42:b3:20:6e:bc:4b: 53:b0:a2:e2:d8:4e:c2:76:61:06:11:45:97:e2:fb: 8c:5f:f6:3b:3b:5f:22:0e:9f:74:45:7e:ed:f8:00: 4e:25:60:c1:ca:16:d0:33:7d:f3:02:c0:95:ea:7e: f1:03:74:45:84:34:33:aa:c6:8c:87:c3:34:04:16: d2:a3:08:97:18:08:e2:21:d2:43:3d:64:2d:80:94: 2e:0a:47:5f:41:1a:a0:5c:70:83:7d:fa:f6:c3:f0: 87:44:59:1f:39:0a:44:30:89:25:e2:2f:55:f7:b7: 61:d4:5e:b7:60:bf:cd:ca:db:99:d3:d8:e8:dd:0f: a2:88:54:ea:3c:66:b2:95:21:9d:af:5e:df:96:54: f2:ab:6e:23:f3:d1:59:92:8c:a0:fd:fa:ae:8d:9c: e4:88:d9:3b:51:d7:a2:f7:0f:27:70:d5:24:05:6b: 77:e8:49:54:63:3b:3d:6d:96:c4:ed:65:d2:05:e2: a3:67:ba:e5:55:72:33:29:51:58:10:2a:40:9e:36: 88:3b:65:c9:1f:44:d2:9d:8d:ca:dd:2d:33:b6:5a: e5:ad:57:66:14:7c:ea:51:f4:a2:82:59:8d:e8:0a: 4b:8e:32:e0:9a:ee:b9:23:df:60:cc:76:50:15:d2: cd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:38:C5:D5:27:09:26:6A:C9:3F:A8:90:6A:B6:3A:81:B3:FB:7E:00 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ab:b8:cc:e5:d9:ee:aa:85:40:fa:83:52:cf:40:c4:38:cd: 0c:c8:90:b7:1d:84:2b:41:b2:eb:55:b6:d8:15:a9:ea:de:0b: 1b:30:22:9d:0d:7d:ba:c5:b1:f4:dd:a3:4e:b0:56:c6:fa:e7: e8:dd:ee:c8:09:e0:77:b5:88:a0:13:0a:31:c1:48:5c:18:d6: 8c:18:44:ce:00:cf:08:64:89:01:60:37:47:bc:cf:ae:2d:e8: 7f:f2:f7:7e:83:9e:60:e8:70:00:85:06:27:28:cf:9f:53:30: 35:f0:ab:23:4c:43:bd:0a:7c:9c:2a:cf:e4:22:82:5c:5d:2a: 78:c9:37:fa:ec:1e:dd:6e:9d:66:25:96:c5:99:97:2b:d8:46: 57:f2:a9:99:5e:1a:2d:d4:2b:53:1e:5c:73:37:1d:11:28:0f: 6f:01:de:7d:41:77:c8:07:21:2a:e2:4c:7a:23:75:11:bd:5a: 38:73:7e:61:8a:f7:7d:35:94:7a:67:a4:a4:e4:36:8b:74:23: 7c:4d:74:ff:2c:36:14:a9:86:d8:ac:86:3d:4f:4c:0a:15:3d: 88:51:5d:66:47:21:d6:da:24:ed:03:ae:e0:5f:0b:9b:1c:0f: 0b:1b:e4:c9:c5:d9:02:a9:32:4d:29:13:cd:20:0d:ad:1c:69: 55:ed:eb:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjQxMTIyMjI1MjIwWhcNMjQxMTI5MjI1MjIwWjAYMRYwFAYD VQQDEw02NzQxMGIyNC01MWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BsyWFhp/4NCsyBuvEtTsKLi2E7CdmEGEUWX4vuMX/Y7O18iDp90RX7t+ABO JWDByhbQM33zAsCV6n7xA3RFhDQzqsaMh8M0BBbSowiXGAjiIdJDPWQtgJQuCkdf QRqgXHCDffr2w/CHRFkfOQpEMIkl4i9V97dh1F63YL/NytuZ09jo3Q+iiFTqPGay lSGdr17fllTyq24j89FZkoyg/fqujZzkiNk7Udei9w8ncNUkBWt36ElUYzs9bZbE 7WXSBeKjZ7rlVXIzKVFYECpAnjaIO2XJH0TSnY3K3S0ztlrlrVdmFHzqUfSiglmN 6ApLjjLgmu65I99gzHZQFdLNtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY4xdUn CSZqyT+okGq2OoGz+34AMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIq7jM5dnuqoVA+oNSz0DEOM0MyJC3HYQrQbLrVbbYFanq3gsbMCKd DX26xbH03aNOsFbG+ufo3e7ICeB3tYigEwoxwUhcGNaMGETOAM8IZIkBYDdHvM+u Leh/8vd+g55g6HAAhQYnKM+fUzA18KsjTEO9CnycKs/kIoJcXSp4yTf67B7dbp1m JZbFmZcr2EZX8qmZXhot1CtTHlxzNx0RKA9vAd59QXfIByEq4kx6I3URvVo4c35h ivd9NZR6Z6Sk5DaLdCN8TXT/LDYUqYbYrIY9T0wKFT2IUV1mRyHW2iTtA67gXwub HA8LG+TJxdkCqTJNKRPNIA2tHGlV7euy -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:26 2024 by rpki-client on console-fra.rpki-client.org